Cybersecurity

Organisations’ critical infrastructure systems are essential to their bottom line, ability to innovate and daily operations. It is an important part of an organisation’s overall risk management framework. The UK Cybersecurity module offers guidance on how to handle your Cybersecurity obligations. The module covers areas of law such as the 'Data Protection Act 2018', 'The Network and Information Systems Regulations 2018', 'General Data Protection Regulation 2016/679' and over 26 other compliance sources.

Module Scope:

Core Obligations

  • Overview
  • Asset Management
  • Business Environment
  • Governance
  • Risk Assessment
  • Risk Management Strategy
  • Supply Chain Risk Management
  • Identity Management, Authentication and Access Control
  • Awareness and Training
  • Data Security
  • Information Protection Processes
  • Maintenance
  • Protective Technologies
  • Anomalies and Events
  • Security Continuous Monitoring
  • Detection Processes
  • Response Planning
  • Communication
  • Mitigation
  • Improvements and Recovery Planning
  • Communications

Legal Landscape

  • Data Protection Act 2018
  • Network and Information Systems Regulations 2018
  • General Data Protection Regulation 2016/679
  • Civil Contingencies Act 2004
  • and 26 other compliance sources

 

Regulators & Enforcement Agencies

  • Information Commissioner’s Office
  • Financial Conduct Authority

Legal Expert

Barrister KC, The 36 Group

Dean Armstrong

DEAN ARMSTRONG KC is the UK’s leading barrister and King’s Counsel on cyber law. He advises governments and multinationals around the world on all aspects of cyber law, Blockchain, crypto-currencies, and cyber litigation. He is the author of two seminal textbooks on the subject, with two more to come: “Cyber Litigation-Law and Practice” and “Cyber Insurance”.He has advised Barclays Bank, The Bank of England, Vodafone, Whitbread, and Bosch.He has advised the Government and Prime Minister...

Barrister, The 36 Group

Ben Symons

BEN SYMONS is a barrister at The 36 Group. He specialises in data protection and privacy law. Ben also advises on and undertakes litigation in relation to all aspects of data protection and privacy law that arise from cyber security incidents and data breaches. Ben also advises on litigation strategy in relation to defending shareholder class actions relating to data breaches. Ben has published numerous articles in relation to data protection and an organisation's obligations...